d7-sms

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill instructs the agent to connect to D7 SMS via the Membrane CLI and to list/run actions (e.g., "membrane action list" / "membrane action run") that fetch SMS messages, contacts, lists and media from the external D7 SMS service—these are untrusted, user-generated third-party contents that the agent is expected to read and could materially influence subsequent actions.